Please do provide a link, especially if it’s very easy to find. I’m not saying anything you say is wrong, only that if it’s not an opinion, then a link from a trusted source helps other to understand the situation.

servers run on RAM

What’s the different with zego logs alternatives, e.g. https://openvpn.net/as-docs/tutorials/tutorial--turn-off-logging.html

Source please, we in the /privacy community genuinely want to learn so when such things do happen, we all benefit from factual information. Please do not assume we all know what you are referring to. It is particularly in this kind of cases when, for example with Signal what was “shared” with authorities is basically irrelevant, cf https://signal.org/bigbrother/ so we must be precise.

Well you could do that but honestly a NAS is “just” yet another computer with a specific form factor. So … do buy one if you want to but nothing is preventing you from grabbing whatever hardware you have around, e.g. old laptop, unused SBC like a Raspberry Pi, desktop gathering dust, put Docker or Podman on it, get going. If you want access from the outside you can use TailScale (easiest to setup), WireGuard indeed or OpenVPN.

Yes IMHO having your own data on your own NAS where you entirely control access (e.g. LAN only, no VPN even unless you go on holiday) is the safest and most reliable.

kSuite. (I left Proton cause of the lack of webdav, caldav, carddav)

Interesting, I’ll check that because indeed for now the support is not non-existent yet still not good enough IMHO.

Article on the topic https://www.404media.co/signal-clone-telemessage-deleted-video-about-how-it-works-heres-what-it-said/

Isn’t that just delegating trust to a third party, e.g. here Google? It’s not as if Google was somehow immune to 0 days.

how do you know you’re interacting with an authentic signal client, and not a bastardized one.

I don’t think that’s the point… it does not matter. Even if it’s an authentic client, if the device (e.g. 0 day vulnerability on the OS) or the user (e.g. does not lock their phone while going to the bathroom) is compromised, your conversation is not secure.

I already made browser suggestions https://lemmy.ml/post/29712598/18453254 but I would also add Ceno https://ceno.network/ in the 5th layer due to its P2P and caching nature.

Up to you and OP but the fact that there isn’t even Firefox or LibreWolf or WaterFox but there is Chrome, Brave and Chromium is problematic to me. At the very least Firefox should be there and IMHO below Chrome.

Right? Why doesn’t everybody see how obviously powerful it is to be THE main browser engine and thus how every single Chromium installation and further usage solidify the position of dominance, and thus to dictate the future of the Web (no less!) that it gives to a gigantic corporation? A corporation so big it is at risk of being split in pieces as it was ruled just literally weeks ago that Google had formed an illegal monopoly in its ad business?

Come on people, don’t be fucking naive of course it’s bad! Of course we SHOULD dunk on Brave and every other browsers doing the same!

More on Brave https://lemmy.ml/post/29741804

Again I’m not comparing a perfectly setup productivity machine online versus an offline one, I’m comparing an entertainment machine also used for work vs an offline one.

FWIW I did do offline holidays and yes, I was missing a lot, yet arguably it didn’t make me less productive. Now I travel with kiwix with StackOverflow and Wikipedia .zim files and each time I believe, maybe naively, that I’m more productive, so indeed iteration helps but my point was more against distractions.

IMHO with these 2 you cover most.

I’m not sure what’s that’s supposed to show as “there are built in settings for some of this stuff, it’s not complete and many settings are abstracted away from the user. Enter about:config” since it might be hierarchical, i.e. disabling a single telemetry toggle, either via Preferences or about:config might disable all the other ones. I haven’t looked specifically at that part of the code of Firefox but I’d trust more a Wireshark analysis than this since it doesn’t actually show (unless I missed that part, quite possible as it’s relatively long) that information does actually go back to Mozilla even while one has disabled all telemetry option.

Fingerprinting is fair, in the sense that yes, if you do broadcast your userAgent and other public information you do narrow the potential search space and thus expose you as an individual more, yet has nothing to do with Mozilla.

Do you trust this preference panel on telemetry? If not why not? If you do believe it is legit what do you believe it remains problematic?

What does that have to do with a phone?

Edit: FWIW you can say no (ideally explaining why, even providing an alternative while doing so, e.g. NextCloud with CollaboraOffice, for email… well you can clarify in a footer that this email thread is not private and suggest creating Tuta or ProtonMail account, even if one time use) to people who use Google Docs and GMail. You can also have a one time use account.

It is not. It is hard only if you are lazy, sorry to be so blunt.

Amazon works because they are :

• the top links on search engine for a lot of stuff
• very popular and thus misconstrued as trusted
• relatively cheap by either abusing its monopoly position and/or selling shitty products that are even cheaper where they come originally from, e.g. AliExpress

So… as others said here, nearly anything else is better. I left Amazon years ago and basically now my preference is :

• local specialized shops next door, e.g. butcher, fruit monger, florist, farmer market, bike shop, repair shop, etc
• local generic shops, e.g. small supermarket
• city level shops, e.g. sportswear shops
• nation wide shops with delivery, here in Belgium it would be Bol.com for … anything, for IT it’d be CoolBlue, for sports Decathlon, etc
• international shops directly from producers, lastly it was NitroKey from Germany (as I’m based in the EU I look for EU alternative first)

So… this is actually both easy and convenient because each time it becomes easier. You get to know the owners of the local shop, you get to have accounts on the different online websites. You get to actually talk to actual humans, even from online shops. Last example being buying RollerBlades from a Danish shop and nearly 1 year later, a screw went loose so they shipped me for free a replacement just because I explain the problem via email directly to them.

In the end I’m happier since. I felt like I’m contributing to a better neighborhood and I’m more mindful about my choices. This is even more the case since Trumps tariffs.

You can replace the generated image by searching for images of “Goggle wool ski mask” IMHO.

On the 5th layer I’d add NitroKey or YubiKey to remind people that in addition to software you can have physical tokens too.

On browsers, as you put Chromium then also put Firefox or deMozillaed Firefox e.g. WaterFox.

I’d put Brave back to the 2nd layer due to relying on Chromium and being heavily marketed while gathering data for its crypto scheme. I’d also put Firefox on the 2nd or 3rd layer.